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DETAILED ACTION 

1. Claims 1-3, 5-9, 17-19, 25-27, and 29-30 are pending. 

2. A request for continued examination under 37 CFR 1.114, 
including the fee set forth in 37 CFR 1.17(e), was filed in this 
application after final rejection. Since this application is 
eligible for continued examination under 37 CFR 1.114, and the 
fee set forth in 37 CFR 1.17(e) has been timely paid, the 
finality of the previous Office action has been withdrawn 
pursuant to 37 CFR 1.114. Applicant * s submission filed on 
12/22/2006 has been entered. 

Claim RejBctions - 35 USC §103 

3. The following is a quotation of 35 U.S.C, 103(a) which 
forms the basis for all obviousness rejections set forth in this 
Office action: 

(a) A patent may not be obtained though the invention is not identically 
disclosed or described as set forth in section 102 of this title, if the 
differences between the subject matter sought to be patented and the prior 
art are such that the subject matter as a whole would have been obvious at 
the time the invention was made to a person having ordinary skill in the 
art to which said subject matter pertains. Patentability shall not be 
negatived by the manner in which the invention was made. 

4. Claims 1-3, 5-9, 17-19, 25-27, and 29-30 are rejected under 
35 U.S.C. 103(a) as being unpatentable over Matyas, Jr. et al 
(US 6687375), in view of Chen et al (US 6182220), further in 
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view of Hardy et al (US 6073242), and further in view of Menezes 
et al (Handbook of Applied Cryptography) . 

As per claims 1, 17 and 25, Matyas Jr. et al discloses 
initializing a pseudo-random number generator (PRNG) ; obtaining 
local seeding information from a host; obtaining additional 
seeding information from one or more sources; and mixing the. 
PRNG with the local seeding information and the additional 
seeding information (see column 9 lines 19-34 and 45-67) to 
perform one or more of providing an unpredictable system status, 
amplifying entropy, and enhancing system security (see column 9 
lines 45-67 ) . 

Matyas Jr. et al fails to disclose securely obtaining 
additional seeding information from remote entropy servers. 

However, Chen et al teaches obtaining seeding information 
from a remote entropy server (see column 1 line 66 through 
column 2 line 9) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to obtain the additional 
seeding information of Matyas Jr. et al from the server of Chen 
et al . 

Motivation to do so would have been too update passwords on 
the server (see Chen et al column 4 lines 15-39) . 
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The modified Matyas Jr. et al and Chen et al system fails 
to disclose the communication between host and server being 
secure . 

However, Hardy et al teaches secure communications (see 
column 3 lines 54-67). 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to use Hardy et al's 
method of secure communications in the modified system of Matyas 
Jr. et al and Chen et al system. 

Motivation to do so would have been to provide 
confidentiality, authentication and integrity to the 
communications (see column 3 lines 54-67). 

The modified Matyas Jr. et al, Chen et al, and Hardy et al 
system fails to disclose the specific method of securely 
obtaining the keys, data and obtaining seeding information from 
each location. 

However, Menezes et al teaches the key exchanging (see 
section 12,5.1), the use of temporary keys (see page 494), the 
use of a public key encryption scheme (see section 1.8.1) and 
obtaining a large amount of seeding information (see pages 170- 
171) . 

At the time of the invention it would have been obvious to 
a person of ordinary skill in the art to use the methods of 
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Menezes et al to securely obtain the seeding information of the 
modified Matyas Jr. et al, Chen et al, and Hardy et al system 
and for the obtaining to be repeated. 

Motivation to do so would have been to transport the key 
(see section 12.5.1), to limit the available ciphertext (see 
page 494), only the private key must be kept secret (see section 
1.8.4) and seeds should be sufficiently large so that a search 
of all seeds in infeasible (see page 171) . 

As- per claims 2-3 and 26-27, the modified Matyas Jr. et al, 
Chen et al. Hardy et al, and Menezes et al system discloses the. 
initializing the PRNG comprises initializing the internal state 
of the PRNG with a random value that is a seed (see Matyas Jr. 
et al column 9 lines 19-34). 

As per claims 5 and 29, the modified Matyas Jr. et al, Chen 
et al. Hardy et al, and Menezes et al system discloses remote 
entropy servers maintain random state pool to supply the host 
with the random value (see Matyas Jr. et al column 9 lines 45- 
67) . 

As per claim 6-8, the modified Matyas Jr. et al, Chen et 
al, Hardy et al, and Menezes et al system discloses the 
obtaining of the remote seeding information from the remote 
entropy servers is performed via a privacy protocol, wherein the 
privacy protocol comprises secure sockets layer (SSL) protocol 



Application/Control Number: 09/822,548 Page ■ 6 

Art Unit: 2137 

and transport layer security (TLS) protocol (see Hardy et al 
column 3 lines 54-67) , 

As per claims 9 and 30, the modified Matyas Jr. et al, Chen 
et al. Hardy et al, and Menezes et al system discloses the 
stirring the PRNG comprises producing a cryptographically random 
stream of bits (see Matyas Jr. et al column 9 lines 45-67) . 

As per claim 18, the modified Matyas Jr. et al, Chen et al. 
Hardy et al, and Menezes et al system discloses the local system 
generates local seeding information (see Matyas Jr. et al column 
9 lines 45-67) . 

As per claim 19,' the modified Matyas Jr. et al, Chen et al. 
Hardy et al, and Menezes et al system^ discloses the remote 
computer systems are to generate the remote seeding information 
via the remote entropy servers (see Chen et al column 1 line 66 
through column 2 line 9) . 

Response to Arguments 

5. Applicant's arguments filed 08/28/2006 have been fully 
considered but they are not persuasive. Applicant argues the 
combined references fail to disclose ''securely obtaining remote 
seeding information from remote entropy servers via a secure 
entropy collection protocol, the remote seeding information to 
be mixed with the local seeding information to perform one or 
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more of providing an unpredictable system status, amplifying 
entropy, and enhancing system security". 

With respect to this argument, Applicant is directed to 
Matyas column 9 lines 19-34 where it is disclosed that, ''A PRNG 
is typically initialized with one or more secret seed values" 
and ''If there is more than one seed value, these multiple seed 
values may be collected within a single structure or composite 
seed value, .thus allowing the multiple seed values to be 
referred to as a single composite value." Therefore, 
Applicant's statement that Matyas teaches a system with only one 
secret seed value is incorrect. Furthermore, in Matyas column 9 
lines 45-67, Matyas teaches that a seed value with structure is 
unwanted and therefore the mixing occurs to obtain uniformly 
distributed entropy in the seed. This" mixing increases the 
entropy of the seed because there is no longer structure to the 
seed and thereby enhances the security of the system since it 
will now be more difficult to determine the seed values. 
Furthermore, since Matyas teaches the use of multiple seeds and 
when combined with the teaching of obtaining a seed from a 
remote s'erver the modified system teaches obtain multiple seeds 
from remote servers. 
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Conclusion 

6. The prior art made of record and not relied upon is 
considered pertinent to applicant's disclosure. Wallace and 
Peinado teach methods of using multiple seeds from remote 
servers. 

. Any inquiry concerning this communication or earlier 
communications from the examiner should be directed to Michael 
Pyzocha whose telephone number is (571) 272-3875. The examiner 
can normally be reached on 7:00am - 4:30pm first Fridays of the 
bi-week off. 

If attempts to reach the examiner by telephone are 
unsuccessful, the examiner's supervisor, Emmanuel Moise can be 
reached on (571) 272-3865. The fax phone number for the 
organization where this application or proceeding is assigned is 
703-872-9306. 
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Information regarding the status of an application may be 
obtained from the Patent Application Information Retrieval 
(PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, 
see http: //pair-direct .uspto. gov. Should you have questions on 
access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free) . 
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